CVE-2025-23009 in SonicWALL NetExtenderinfo

Summary

by MITRE • 04/10/2025

A local privilege escalation vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an attacker to trigger an arbitrary file deletion.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Disclosure

04/10/2025

Moderation

accepted

Entry

VDB-304303

CPE

ready

CWE

CWE-250 (confirmed)

CVSS

4.4 (VulDB)

EPSS

0.00345

KEV

Activities

very low

Sector

Transportation, Homeoffice, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-23009
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-23009
CVE Details	https://www.cvedetails.com/cve/CVE-2025-23009/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!